Package: wget Version: 1.10.2-2 Severity: normal When accessing an https server, wget does not appear to check the Subject Alternative Name field of the server certificate and in cases where wget is connecting to a name listed in that field, wget declines to connect to the server without the --no-check-certificate option, which should not be necessary in this case.
A similar problem has been fixed in fetchmail, and Debian bug report #201113 may contain useful information. -- System Information: Debian Release: 4.0 APT prefers testing APT policy: (990, 'testing'), (500, 'unstable') Architecture: amd64 (x86_64) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18-6-corax-1 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages wget depends on: ii libc6 2.3.6.ds1-10 GNU C Library: Shared libraries ii libssl0.9.8 0.9.8c-4 SSL shared libraries wget recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
